Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:42653' (ECDSA) to the list of known hosts. 2022/09/18 15:36:21 fuzzer started 2022/09/18 15:36:21 dialing manager at localhost:36051 syzkaller login: [ 36.525740] cgroup: Unknown subsys name 'net' [ 36.640294] cgroup: Unknown subsys name 'rlimit' 2022/09/18 15:36:35 syscalls: 2215 2022/09/18 15:36:35 code coverage: enabled 2022/09/18 15:36:35 comparison tracing: enabled 2022/09/18 15:36:35 extra coverage: enabled 2022/09/18 15:36:35 setuid sandbox: enabled 2022/09/18 15:36:35 namespace sandbox: enabled 2022/09/18 15:36:35 Android sandbox: enabled 2022/09/18 15:36:35 fault injection: enabled 2022/09/18 15:36:35 leak checking: enabled 2022/09/18 15:36:35 net packet injection: enabled 2022/09/18 15:36:35 net device setup: enabled 2022/09/18 15:36:35 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/18 15:36:35 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/18 15:36:35 USB emulation: enabled 2022/09/18 15:36:35 hci packet injection: enabled 2022/09/18 15:36:35 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220916) 2022/09/18 15:36:35 802.15.4 emulation: enabled 2022/09/18 15:36:35 fetching corpus: 50, signal 23977/25815 (executing program) 2022/09/18 15:36:35 fetching corpus: 100, signal 44883/48276 (executing program) 2022/09/18 15:36:35 fetching corpus: 150, signal 54093/58956 (executing program) 2022/09/18 15:36:35 fetching corpus: 200, signal 57745/64134 (executing program) 2022/09/18 15:36:35 fetching corpus: 250, signal 64191/71919 (executing program) 2022/09/18 15:36:35 fetching corpus: 300, signal 69980/79020 (executing program) 2022/09/18 15:36:36 fetching corpus: 350, signal 76923/87142 (executing program) 2022/09/18 15:36:36 fetching corpus: 400, signal 79926/91419 (executing program) 2022/09/18 15:36:36 fetching corpus: 450, signal 83883/96614 (executing program) 2022/09/18 15:36:36 fetching corpus: 500, signal 88789/102577 (executing program) 2022/09/18 15:36:36 fetching corpus: 550, signal 91926/106801 (executing program) 2022/09/18 15:36:36 fetching corpus: 600, signal 95046/111053 (executing program) 2022/09/18 15:36:36 fetching corpus: 650, signal 99748/116625 (executing program) 2022/09/18 15:36:36 fetching corpus: 700, signal 103667/121461 (executing program) 2022/09/18 15:36:36 fetching corpus: 750, signal 105639/124521 (executing program) 2022/09/18 15:36:37 fetching corpus: 800, signal 108420/128267 (executing program) 2022/09/18 15:36:37 fetching corpus: 850, signal 111398/132139 (executing program) 2022/09/18 15:36:37 fetching corpus: 900, signal 113782/135444 (executing program) 2022/09/18 15:36:37 fetching corpus: 950, signal 115444/137996 (executing program) 2022/09/18 15:36:37 fetching corpus: 1000, signal 116987/140512 (executing program) 2022/09/18 15:36:37 fetching corpus: 1050, signal 119706/143994 (executing program) 2022/09/18 15:36:37 fetching corpus: 1100, signal 122178/147297 (executing program) 2022/09/18 15:36:38 fetching corpus: 1150, signal 123870/149824 (executing program) 2022/09/18 15:36:38 fetching corpus: 1200, signal 125720/152448 (executing program) 2022/09/18 15:36:38 fetching corpus: 1250, signal 127093/154669 (executing program) 2022/09/18 15:36:38 fetching corpus: 1300, signal 128853/157236 (executing program) 2022/09/18 15:36:38 fetching corpus: 1350, signal 131561/160484 (executing program) 2022/09/18 15:36:38 fetching corpus: 1400, signal 134722/164070 (executing program) 2022/09/18 15:36:38 fetching corpus: 1450, signal 137282/167210 (executing program) 2022/09/18 15:36:38 fetching corpus: 1500, signal 138959/169540 (executing program) 2022/09/18 15:36:39 fetching corpus: 1550, signal 141134/172255 (executing program) 2022/09/18 15:36:39 fetching corpus: 1600, signal 142650/174436 (executing program) 2022/09/18 15:36:39 fetching corpus: 1650, signal 144385/176783 (executing program) 2022/09/18 15:36:39 fetching corpus: 1700, signal 146429/179348 (executing program) 2022/09/18 15:36:39 fetching corpus: 1750, signal 147700/181284 (executing program) 2022/09/18 15:36:39 fetching corpus: 1800, signal 149179/183348 (executing program) 2022/09/18 15:36:39 fetching corpus: 1850, signal 151369/185951 (executing program) 2022/09/18 15:36:40 fetching corpus: 1900, signal 154142/188899 (executing program) 2022/09/18 15:36:40 fetching corpus: 1950, signal 155344/190721 (executing program) 2022/09/18 15:36:40 fetching corpus: 2000, signal 156007/192120 (executing program) 2022/09/18 15:36:40 fetching corpus: 2050, signal 157427/194035 (executing program) 2022/09/18 15:36:40 fetching corpus: 2100, signal 158857/195890 (executing program) 2022/09/18 15:36:40 fetching corpus: 2150, signal 159932/197488 (executing program) 2022/09/18 15:36:40 fetching corpus: 2200, signal 161322/199304 (executing program) 2022/09/18 15:36:40 fetching corpus: 2250, signal 162732/201130 (executing program) 2022/09/18 15:36:41 fetching corpus: 2300, signal 164739/203325 (executing program) 2022/09/18 15:36:41 fetching corpus: 2350, signal 166050/205007 (executing program) 2022/09/18 15:36:41 fetching corpus: 2400, signal 167417/206722 (executing program) 2022/09/18 15:36:41 fetching corpus: 2450, signal 169234/208753 (executing program) 2022/09/18 15:36:41 fetching corpus: 2500, signal 170228/210180 (executing program) 2022/09/18 15:36:41 fetching corpus: 2550, signal 171397/211718 (executing program) 2022/09/18 15:36:41 fetching corpus: 2600, signal 172258/213031 (executing program) 2022/09/18 15:36:41 fetching corpus: 2650, signal 173756/214713 (executing program) 2022/09/18 15:36:42 fetching corpus: 2700, signal 175161/216363 (executing program) 2022/09/18 15:36:42 fetching corpus: 2750, signal 176463/217897 (executing program) 2022/09/18 15:36:42 fetching corpus: 2800, signal 178352/219829 (executing program) 2022/09/18 15:36:42 fetching corpus: 2850, signal 179108/220980 (executing program) 2022/09/18 15:36:42 fetching corpus: 2900, signal 180520/222586 (executing program) 2022/09/18 15:36:42 fetching corpus: 2950, signal 181890/224098 (executing program) 2022/09/18 15:36:42 fetching corpus: 3000, signal 183047/225476 (executing program) 2022/09/18 15:36:43 fetching corpus: 3050, signal 184044/226709 (executing program) 2022/09/18 15:36:43 fetching corpus: 3100, signal 184826/227804 (executing program) 2022/09/18 15:36:43 fetching corpus: 3150, signal 185402/228801 (executing program) 2022/09/18 15:36:43 fetching corpus: 3200, signal 186507/230114 (executing program) 2022/09/18 15:36:43 fetching corpus: 3250, signal 187357/231242 (executing program) 2022/09/18 15:36:43 fetching corpus: 3300, signal 188090/232318 (executing program) 2022/09/18 15:36:43 fetching corpus: 3350, signal 189450/233736 (executing program) 2022/09/18 15:36:43 fetching corpus: 3400, signal 190217/234788 (executing program) 2022/09/18 15:36:44 fetching corpus: 3450, signal 191110/235861 (executing program) 2022/09/18 15:36:44 fetching corpus: 3500, signal 192013/236956 (executing program) 2022/09/18 15:36:44 fetching corpus: 3550, signal 192622/237879 (executing program) 2022/09/18 15:36:44 fetching corpus: 3600, signal 193206/238830 (executing program) 2022/09/18 15:36:44 fetching corpus: 3650, signal 194225/239962 (executing program) 2022/09/18 15:36:44 fetching corpus: 3700, signal 194947/240920 (executing program) 2022/09/18 15:36:44 fetching corpus: 3750, signal 195658/241875 (executing program) 2022/09/18 15:36:44 fetching corpus: 3800, signal 197033/243122 (executing program) 2022/09/18 15:36:44 fetching corpus: 3850, signal 197923/244151 (executing program) 2022/09/18 15:36:45 fetching corpus: 3900, signal 199175/245291 (executing program) 2022/09/18 15:36:45 fetching corpus: 3950, signal 200059/246257 (executing program) 2022/09/18 15:36:45 fetching corpus: 4000, signal 200643/247117 (executing program) 2022/09/18 15:36:45 fetching corpus: 4050, signal 201287/247925 (executing program) 2022/09/18 15:36:45 fetching corpus: 4100, signal 202124/248839 (executing program) 2022/09/18 15:36:45 fetching corpus: 4150, signal 203131/249846 (executing program) 2022/09/18 15:36:45 fetching corpus: 4200, signal 203696/250635 (executing program) 2022/09/18 15:36:45 fetching corpus: 4250, signal 204404/251463 (executing program) 2022/09/18 15:36:45 fetching corpus: 4300, signal 204912/252240 (executing program) 2022/09/18 15:36:46 fetching corpus: 4350, signal 205773/253166 (executing program) 2022/09/18 15:36:46 fetching corpus: 4400, signal 206672/254065 (executing program) 2022/09/18 15:36:46 fetching corpus: 4450, signal 207569/254928 (executing program) 2022/09/18 15:36:46 fetching corpus: 4500, signal 208045/255611 (executing program) 2022/09/18 15:36:46 fetching corpus: 4550, signal 208784/256400 (executing program) 2022/09/18 15:36:46 fetching corpus: 4600, signal 209160/257033 (executing program) 2022/09/18 15:36:46 fetching corpus: 4650, signal 209433/257669 (executing program) 2022/09/18 15:36:47 fetching corpus: 4700, signal 210673/258566 (executing program) 2022/09/18 15:36:47 fetching corpus: 4750, signal 211353/259280 (executing program) 2022/09/18 15:36:47 fetching corpus: 4800, signal 212097/260132 (executing program) 2022/09/18 15:36:47 fetching corpus: 4850, signal 213060/260912 (executing program) 2022/09/18 15:36:47 fetching corpus: 4900, signal 214005/261694 (executing program) 2022/09/18 15:36:47 fetching corpus: 4950, signal 214572/262368 (executing program) 2022/09/18 15:36:47 fetching corpus: 5000, signal 215499/263146 (executing program) 2022/09/18 15:36:47 fetching corpus: 5050, signal 216442/263879 (executing program) 2022/09/18 15:36:48 fetching corpus: 5100, signal 216895/264489 (executing program) 2022/09/18 15:36:48 fetching corpus: 5150, signal 217360/265063 (executing program) 2022/09/18 15:36:48 fetching corpus: 5200, signal 217768/265612 (executing program) 2022/09/18 15:36:48 fetching corpus: 5250, signal 218157/266150 (executing program) 2022/09/18 15:36:48 fetching corpus: 5300, signal 218866/266767 (executing program) 2022/09/18 15:36:48 fetching corpus: 5350, signal 219254/267302 (executing program) 2022/09/18 15:36:48 fetching corpus: 5400, signal 219948/267913 (executing program) 2022/09/18 15:36:48 fetching corpus: 5450, signal 220600/268526 (executing program) 2022/09/18 15:36:48 fetching corpus: 5500, signal 221424/269185 (executing program) 2022/09/18 15:36:48 fetching corpus: 5550, signal 221889/269722 (executing program) 2022/09/18 15:36:49 fetching corpus: 5600, signal 222393/270213 (executing program) 2022/09/18 15:36:49 fetching corpus: 5650, signal 222709/270739 (executing program) 2022/09/18 15:36:49 fetching corpus: 5700, signal 223251/271344 (executing program) 2022/09/18 15:36:49 fetching corpus: 5750, signal 224013/271881 (executing program) 2022/09/18 15:36:49 fetching corpus: 5800, signal 224472/272342 (executing program) 2022/09/18 15:36:49 fetching corpus: 5850, signal 224930/272836 (executing program) 2022/09/18 15:36:49 fetching corpus: 5900, signal 225442/273351 (executing program) 2022/09/18 15:36:49 fetching corpus: 5950, signal 226167/273819 (executing program) 2022/09/18 15:36:50 fetching corpus: 6000, signal 226582/274289 (executing program) 2022/09/18 15:36:50 fetching corpus: 6050, signal 227125/274797 (executing program) 2022/09/18 15:36:50 fetching corpus: 6100, signal 227752/275272 (executing program) 2022/09/18 15:36:50 fetching corpus: 6150, signal 228097/275692 (executing program) 2022/09/18 15:36:50 fetching corpus: 6200, signal 228666/276125 (executing program) 2022/09/18 15:36:50 fetching corpus: 6250, signal 229393/276614 (executing program) 2022/09/18 15:36:50 fetching corpus: 6300, signal 229984/277051 (executing program) 2022/09/18 15:36:50 fetching corpus: 6350, signal 230563/277478 (executing program) 2022/09/18 15:36:50 fetching corpus: 6400, signal 230828/277869 (executing program) 2022/09/18 15:36:51 fetching corpus: 6450, signal 231313/278278 (executing program) 2022/09/18 15:36:51 fetching corpus: 6500, signal 232093/278673 (executing program) 2022/09/18 15:36:51 fetching corpus: 6550, signal 232528/279067 (executing program) 2022/09/18 15:36:51 fetching corpus: 6600, signal 233215/279486 (executing program) 2022/09/18 15:36:51 fetching corpus: 6650, signal 233992/279908 (executing program) 2022/09/18 15:36:51 fetching corpus: 6700, signal 234616/280338 (executing program) 2022/09/18 15:36:51 fetching corpus: 6750, signal 235278/280733 (executing program) 2022/09/18 15:36:51 fetching corpus: 6800, signal 235774/281206 (executing program) 2022/09/18 15:36:52 fetching corpus: 6850, signal 236151/281564 (executing program) 2022/09/18 15:36:52 fetching corpus: 6900, signal 236656/281915 (executing program) 2022/09/18 15:36:52 fetching corpus: 6950, signal 236922/282071 (executing program) 2022/09/18 15:36:52 fetching corpus: 7000, signal 237349/282072 (executing program) 2022/09/18 15:36:52 fetching corpus: 7050, signal 237870/282074 (executing program) 2022/09/18 15:36:52 fetching corpus: 7100, signal 238428/282174 (executing program) 2022/09/18 15:36:52 fetching corpus: 7150, signal 238866/282174 (executing program) 2022/09/18 15:36:52 fetching corpus: 7200, signal 239272/282174 (executing program) 2022/09/18 15:36:53 fetching corpus: 7250, signal 239690/282176 (executing program) 2022/09/18 15:36:53 fetching corpus: 7300, signal 240191/282179 (executing program) 2022/09/18 15:36:53 fetching corpus: 7350, signal 241270/282181 (executing program) 2022/09/18 15:36:53 fetching corpus: 7400, signal 241624/282181 (executing program) 2022/09/18 15:36:53 fetching corpus: 7450, signal 242323/282183 (executing program) 2022/09/18 15:36:53 fetching corpus: 7500, signal 242852/282221 (executing program) 2022/09/18 15:36:53 fetching corpus: 7550, signal 243249/282238 (executing program) 2022/09/18 15:36:54 fetching corpus: 7600, signal 243692/282240 (executing program) 2022/09/18 15:36:54 fetching corpus: 7650, signal 244129/282258 (executing program) 2022/09/18 15:36:54 fetching corpus: 7700, signal 244421/282258 (executing program) 2022/09/18 15:36:54 fetching corpus: 7750, signal 245093/282268 (executing program) 2022/09/18 15:36:54 fetching corpus: 7800, signal 245547/282294 (executing program) 2022/09/18 15:36:54 fetching corpus: 7824, signal 245748/282302 (executing program) 2022/09/18 15:36:54 fetching corpus: 7824, signal 245748/282302 (executing program) 2022/09/18 15:36:57 starting 8 fuzzer processes 15:36:57 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x6}}, './file0\x00'}) r2 = openat$cgroup_netprio_ifpriomap(r0, &(0x7f0000000080), 0x2, 0x0) r3 = open_tree(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1801) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000100)=[r2, r0, r3, r0, r4], 0x5) recvmmsg$unix(r3, &(0x7f0000003000)=[{{0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f0000000180)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}], 0x20}}, {{&(0x7f00000001c0), 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000240)=""/159, 0x9f}, {&(0x7f0000000300)=""/113, 0x71}, {&(0x7f0000000380)=""/24, 0x18}], 0x3, &(0x7f0000000400)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}], 0x60}}, {{0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000001480)=""/4096, 0x1000}, {&(0x7f0000002480)=""/34, 0x22}, {&(0x7f00000024c0)=""/121, 0x79}, {&(0x7f0000002540)=""/170, 0xaa}, {&(0x7f0000002600)=""/222, 0xde}, {&(0x7f0000002700)=""/103, 0x67}, {&(0x7f0000002780)=""/190, 0xbe}], 0x8, &(0x7f00000028c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}, {{&(0x7f0000002940)=@abs, 0x6e, &(0x7f0000002f40)=[{&(0x7f00000029c0)=""/105, 0x69}, {&(0x7f0000002a40)=""/51, 0x33}, {&(0x7f0000002a80)=""/196, 0xc4}, {&(0x7f0000002b80)=""/179, 0xb3}, {&(0x7f0000002c40)=""/193, 0xc1}, {&(0x7f0000002d40)=""/129, 0x81}, {&(0x7f0000002e00)=""/108, 0x6c}, {&(0x7f0000002e80)=""/173, 0xad}], 0x8, &(0x7f0000002fc0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}], 0x38}}], 0x4, 0x2002, &(0x7f0000003100)) r23 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000003140), 0x200, 0x0) kcmp(0xffffffffffffffff, r10, 0x3, r3, r23) ioctl$NS_GET_OWNER_UID(r19, 0xb704, &(0x7f0000003500)=0x0) r25 = syz_open_dev$mouse(&(0x7f0000003540), 0x4, 0x0) r26 = timerfd_create(0x2, 0x800) r27 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000003580), 0x2500, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r17, 0xc018937b, &(0x7f00000035c0)={{0x1, 0x1, 0x18, r18, {r5, r8}}, './file0\x00'}) r29 = openat$cgroup_subtree(r14, &(0x7f0000003600), 0x2, 0x0) r30 = socket$inet_tcp(0x2, 0x1, 0x0) r31 = memfd_secret(0x0) r32 = openat$tun(0xffffffffffffff9c, &(0x7f0000003b40), 0x20000, 0x0) r33 = fork() sendmmsg$unix(r19, &(0x7f0000007200)=[{{0x0, 0x0, &(0x7f00000031c0)=[{&(0x7f0000003180)="ee944558a27c741709a3ddf661afe9b4ccd9534ffe519924171144f05a128e71", 0x20}], 0x1, 0x0, 0x0, 0x40000}}, {{&(0x7f0000003200)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000034c0)=[{&(0x7f0000003280)="659d41d005229a4795ad83998672457dc738e09e01627dbb64555be9e25d544e189383c2c1bce70ea69f4e7d4e02e430eb2345b8ec1215af58edf8f4da4dabac04d4ae660bf801cc83b6a8c075496ab460c8ba9f3966e02ef7641cf423a725cb6bf27a9238ac4326ef155901c0feb0fbc1930b8a373538f062c0ae59a69a96298130880c11f4add122de07056de7c15c39854d49cffe5e913a0ca69ff42ed55d4a21d550ec43d99cb82012cfab70196edba02f995eeabcc1e06ba6cb75197e57b715c9f2", 0xc4}, {&(0x7f0000003380)="16a229be5d0f20edff578b23977e6c637caa58f10f12927621a51b0b13a993460d657672bc7da4119639def005ec764aaf13b65bad75c91810c489908709392d679ebe79d8fa7726b8b37f3207ed1719eb4cd6ea8ec1314f690c619a029171595bc2a26e7990297a6b6eaae447ba", 0x6e}, {&(0x7f0000003400)="34a8a961e16dd515641535fbb7cd2de0ed9e54cf84f1f59c728d4e9cbc2666061fd010667937e85f90c3e956fb4565cabe793b705c9d2b79183c77174d315ab39717e1842c035832b51f6ab57638893269a71cf1f9555393f50267e14bb5017b930ee0d5b30a8761cf40f6c1afe70f2f6191c8f8b71720a1b78a3c5d7d7c89fb1bd299017856e04b4cefcd96a909a82033fa350e4fd9096890ce5d9148f28ed8219e5d33c5d48db3b2305fe5c371ee9f7317ff2cbc1c8838972131", 0xbb}], 0x3, &(0x7f0000003640)=[@cred={{0x1c, 0x1, 0x2, {r15, r5, r22}}}, @cred={{0x1c, 0x1, 0x2, {r7, r24, r12}}}, @rights={{0x24, 0x1, 0x1, [r0, r25, r20, r17, r20]}}, @rights={{0x14, 0x1, 0x1, [r0]}}, @rights={{0x30, 0x1, 0x1, [r2, r26, r27, r0, r28, r29, r30, r18]}}], 0xb0, 0x10}}, {{&(0x7f0000003700)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003780), 0x0, 0x0, 0x0, 0x4081}}, {{&(0x7f00000037c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000003ac0)=[{&(0x7f0000003840)="5cd8ce33ebef3c22eadc00953dd6fa734f5070b055bf8b86d8a15d7e7031e81484a748825398f1fd4a7dc35d8552df8d29af0c3e0185ba834af966db25b4f2818ba89f82c49c528908182c1918cb2669175f3fc1ec2b7df0026bc76f2069db6dba4a6bd842b9d29f302cc82828c1113273f35b12d5c46c8d93f347481b5aeef2e3b9b0e0f174a9fd47759d5c2598598bf68f23f46dd680743020e8344174e5b640", 0xa1}, {&(0x7f0000003900)="53a05543a3498d067d4eab13e0da758e5ad480cfeee288cb56fbc80a486aa664743a90f2fa005e575b07c1490df03e551563b3fdd34d31fc79f88d00fa2523", 0x3f}, {&(0x7f0000003940)="bf96fd57d4a2e800072fc12916f35064ba74126f0b7b33315d96cbf09a9b1f4c38822e52c236d1d8544a3806e276541eea723139b50afecea557059842fe88765de8b99d76ea31226248fa48193622c7b0f02a079a4b95", 0x57}, {&(0x7f00000039c0)="5c7443ba061c8f7b68b716efb797776c65", 0x11}, {&(0x7f0000003a00)="5341bab87120ff4bfec328c773599f5b22b4a60f2d92dca1cc11560449d92159714ef43dd0179076eca9d716ab6be67b56e552e84f5d81c25cace0aa1b1bcd397c1fcf4c60487ea4fafe28af918a14b0b3e4fff2c579879e8f7c28420aff7d063b0843c0da7c0741b615bf0dfe9954775879eee3ecbb92740f6497c6441ca0e665c82024228110929bb10299a0d57c273735c44ff312f23355e19cf674d472a50da4948eec1c76928b128ae75fe9", 0xae}], 0x5, &(0x7f0000006b80)=[@rights={{0x1c, 0x1, 0x1, [r14, r31, r32]}}, @rights={{0x14, 0x1, 0x1, [r14]}}, @cred={{0x1c, 0x1, 0x2, {r33, 0x0, r8}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r11, r6}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r9}}}, @rights={{0x18, 0x1, 0x1, [r1, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r13, 0x0, r6}}}, @rights={{0x28, 0x1, 0x1, [r20, r14, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r14]}}, @cred={{0x1c, 0x1, 0x2, {r21, r5}}}], 0x130, 0x40}}, {{0x0, 0x0, &(0x7f0000006f40)=[{&(0x7f0000006cc0)="bbd908a0442404164cd08cf05ea08cb65c8d07819615c784989fed98c8453d1dce21881d339a133bb69133058425e77db32c794c180cb7188f21a6f1fdc2b8cf19031e31a1f8cebebbcb9f625ba3a623e00894a7f5902b87081ee8826550a636bfcdbeab76cf76c3032cbedec64f6ffe02114cf34816c8a06090d10b7a4ac93fce27ac921175fe8de2284c1d0a38fcdf6afcf9be240d020c7d91a14dfa7490929af82479c3fec6a5e2068138351c8baea1fb59921100bea3a4471cef01f08ba586016adf391dc41824c1ab5bf3070b0093e15d10daa4aa48cfd713782c8e0b", 0xdf}, {&(0x7f0000006dc0)="ae881bfb2c36e003475902c0b213afd4f99c94b39fce3e52ada2fe07fc579f824199b30b17b459d45e75fd0f645810bfa150d3457eb03f8895937234d490642a8c5efc160ac415f3adb20062041b53f916c5165d5edc25b349defaf4012eb15c671129351acbddd5848e28d53c", 0x6d}, {&(0x7f0000006e40)="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", 0xfb}], 0x3, &(0x7f0000007140)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r15, 0x0, r8}}}, @rights={{0x18, 0x1, 0x1, [r4, r18]}}, @rights={{0x14, 0x1, 0x1, [r14]}}, @cred={{0x1c, 0x1, 0x2, {r10, 0x0, r16}}}], 0x88, 0x4000}}], 0x5, 0x800) 15:36:57 executing program 1: r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @private}, &(0x7f0000000040)=0x10) write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0', [{0x20, '\x03^\'$'}, {0x20, '!*@{'}, {0x20, '-'}, {}, {0x20, '['}], 0xa, "2cbaf66e7c4921e0846964ecdf6e4d973593149502016ed21a6571fe48bbeee4794f47a59ff9cf87a2523981d56cd1941b188ae6449c0ace2ce9f09a0dbde284c00f911405c926b9629f63763674683564b2748cd8144567f9dbf58a95205a224e887da8d29dd64501a62b5ccfb2d1ed484fd3f355029ee5e3cf94d0338a3ccbe84d68ae7174da4dafe793a360f339354686ed635d3a4176131518f0c1c2a56e2322a5bda0b76b8cbf48e9075f17556b416d69304493de15007a1c95e858ec078d2171b1195d117cc25c275b8967de3f2616694e59892233f281ab8e24fd0f59f9060f0e41216b67c59a"}, 0x104) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x2, 0xff}}, './file0\x00'}) setsockopt$IP_VS_SO_SET_FLUSH(r1, 0x0, 0x485, 0x0, 0x0) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0) r2 = perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x2, 0x2, 0x0, 0x40, 0x0, 0x3, 0x41840, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000200), 0x8}, 0x1041, 0xce, 0x4, 0x8, 0xfffffffffffffffd, 0x1, 0x5d, 0x0, 0x5, 0x0, 0x8}, 0x0, 0xd, r1, 0x9) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, &(0x7f00000002c0)={"ccb3c6c44da391d1763bfc44bd9c2f7f", 0x0, 0x0, {0xc1e8, 0x7ff}, {0xfffffffffffffff7, 0x4}, 0x8000, [0xf039, 0x80, 0x4, 0x6, 0x5, 0x31, 0x0, 0x200, 0x100000000, 0x1, 0x0, 0x200, 0x49, 0xa7, 0xefc2, 0x6]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f00000003c0)={{r1}, r3, 0x1c, @unused=[0xffff, 0x1000, 0x9, 0x4], @name="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"}) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) syz_io_uring_setup(0x2006, &(0x7f00000013c0)={0x0, 0xb110, 0x20, 0x2, 0x1c1, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000001440)=0x0, &(0x7f0000001480)) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) syz_io_uring_submit(r5, 0x0, &(0x7f0000001540)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x2, 0x0, r6, &(0x7f0000001500)={0x20000004}, r4}, 0x3) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000001580)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff2000/0xe000)=nil, 0xe000, 0x2000004, 0x11, r7, 0x0) syncfs(r1) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f00000015c0)={{0x8, 0x3}, 0x100, './file1\x00'}) r8 = openat$cgroup_subtree(r7, &(0x7f0000001700), 0x2, 0x0) r9 = pidfd_getfd(r1, r1, 0x0) poll(&(0x7f0000001740)=[{r2, 0x8}, {r8, 0x2002}, {r6, 0x9062}, {0xffffffffffffffff, 0x18}, {r6, 0x100}, {r1, 0x100}, {r9, 0x40}, {r2, 0x2209}, {r6, 0x228}, {r4, 0x4}], 0xa, 0x7fffffff) signalfd4(r2, &(0x7f00000017c0)={[0x3]}, 0x8, 0x80000) 15:36:57 executing program 2: sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000040)={0x17c, 0x0, 0x8, 0x70bd25, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x108, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6627b964}, @TIPC_NLA_NODE_ID={0xf9, 0x3, "cc46ae2449d819054d86b0f859e3761614096db3ea0476c6db7d0702a4405c42cb997bc69100dfce415e39e1623091956755ebfa66fc3461168da07b9f1ec288019667dde79271e3da3994b33dda542cb2d1a9839982da4a925f4ca692f24b9af6709d5dbf8e21ff71370ca58bb6f6c09007d2470413430263611388c0540f11345157f9436f09a455d8daf0263ebe8d7a1f806304e586726b37212a034112bfab6d749640e20e0400703fc5f1c11d785c7be04dd8c0ca2e8690fe34781205ed441892246ac692925aa7497421bb548be9a04b3bb287cef7b4e4804b17c3d291bb20fae060c8ef05fddb7a13015c205b4e0d327d80"}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_SOCK={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3ff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_BEARER={0x4}, @TIPC_NLA_BEARER={0xc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xffff}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x82}, 0x20000080) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_START_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x28, 0x0, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r0}, @val={0xc, 0x99, {0xd9, 0x53}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x81) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000380)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x68, r2, 0x200, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void, @val={0xc, 0x99, {0x9, 0x3a}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'macsec0\x00'}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'wg0\x00'}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x1) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000540)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) sendmsg$NL80211_CMD_GET_MPP(r3, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000680)={&(0x7f00000005c0)={0x88, r2, 0x2, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r0}, @val={0xc, 0x99, {0x80, 0xfffffffe}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x88}, 0x1, 0x0, 0x0, 0x40000c0}, 0x800) sendmsg$TIPC_CMD_GET_NETID(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x1c, 0x0, 0x10, 0x70bd26, 0x25dfdbff, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24008000}, 0x4040055) ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000800)={{0x1, 0x1, 0x18, r3, {0x72, 0x1}}, './file0\x00'}) sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r4, &(0x7f0000000900)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x2c, r2, 0x2, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x582, 0x8}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x12}]}, 0x2c}}, 0x8000) ioctl$EXT4_IOC_CHECKPOINT(r4, 0x4004662b, &(0x7f0000000940)=0x7) r5 = syz_genetlink_get_family_id$batadv(&(0x7f00000009c0), r4) sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f0000000a80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x38, r5, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3f}}]}, 0x38}, 0x1, 0x0, 0x0, 0xc010}, 0x0) sendmsg$TIPC_NL_LINK_GET(r3, &(0x7f0000000bc0)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b00)={0x6c, 0x0, 0x2, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}]}, @TIPC_NLA_SOCK={0x10, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_BEARER={0x30, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x14, 0x2, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x43}}}}}]}]}, 0x6c}}, 0x80) r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000c40), r3) sendmsg$TIPC_NL_NAME_TABLE_GET(r3, &(0x7f0000000ec0)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000c80)={0x1c8, r6, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa083}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}]}, @TIPC_NLA_NODE={0x58, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x52, 0x3, "2fdf7e6ce10e8af6c3db649d72ae6c3727f58c0b797c33c4741a9782ca1faad78d1f75e6f81aa2cc3835bfb27d593c803cce6c6bbc5ed9cd4b1d3651b6c795f1aff7d697796f7a393126bfd1f8a4"}]}, @TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10001}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1ff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x13e}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}]}, @TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}]}, @TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x401}]}, @TIPC_NLA_BEARER={0x34, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1f}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'eth', 0x3a, 'veth1_macvtap\x00'}}]}, @TIPC_NLA_SOCK={0x20, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xfffff2b0}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x135}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}]}]}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x40}, 0x0) r7 = open(&(0x7f0000000f00)='./file0\x00', 0x8e01, 0x184) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r7, &(0x7f0000001000)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f80)={0x14, 0x3, 0x2, 0x801, 0x0, 0x0, {0x2, 0x0, 0xa}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000010c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) 15:36:57 executing program 3: r0 = getpgid(0x0) ptrace$getregs(0xe, r0, 0x3, &(0x7f0000000000)=""/11) timer_create(0xd, &(0x7f0000000040)={0x0, 0x39, 0x2, @tid=r0}, &(0x7f0000000080)) r1 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x40, 0x2}, 0x18) kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, 0xffffffffffffffff, &(0x7f0000000140)={0xffffffffffffffff, r1, 0x9}) timer_create(0x5, &(0x7f0000000200)={0x0, 0x3, 0x0, @thr={&(0x7f0000000180)="ba79258d634925e453a14b8dd22ed8570a3768c8d3c4b59d303d84a9409ed61adf1691641d2ca1f1b01d6c2c324cee3ddb228108c78768303a72ca92", &(0x7f00000001c0)="1470429edfc5bd9e8e96ea94f7f5be42ce5a12809d10"}}, &(0x7f0000000240)=0x0) r3 = getpgid(r0) r4 = syz_open_procfs(r3, &(0x7f0000000280)='net/ip_tables_names\x00') pread64(r4, &(0x7f00000002c0)=""/134, 0x86, 0x0) capget(&(0x7f0000000380)={0x19980330, r0}, &(0x7f00000003c0)={0x10000, 0x8001, 0x8001, 0xfffffffa, 0x5, 0x7ff}) msgsnd(0xffffffffffffffff, &(0x7f0000000400)={0x3, "4415ddf9fb4ff4973a98e3ec0ccacaf1d6d230a390f76e0dd704629535616f3dac607103993224db18cbccfa705e415dbef6a7d1f350b4b7d9272ce66e3cd514ebfd5a1c49f82966f5d40640d1fa25e57fe8417f7d9f778b1c6a54712e63b6de41ef998a695cc2072a60267fc536bb6b15e18964d0cab38a03cc3e5578bce4eb4a737f59c8cc8fe20de1c1c09251321ae9a31d2a18e7c2a513aea9cebd59e9571d37884795"}, 0xad, 0x800) ioctl$BTRFS_IOC_QGROUP_LIMIT(r4, 0x8030942b, &(0x7f00000004c0)={0x7, {0x18, 0x1, 0xd98e, 0x8, 0x3f}}) recvmsg$unix(r4, &(0x7f0000000640)={&(0x7f0000000500)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000580)=""/51, 0x33}], 0x1, &(0x7f0000000600)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x100) ptrace$setopts(0x4206, r5, 0xebd4, 0x24) r6 = getpgid(r0) ptrace$peeksig(0x4209, r6, &(0x7f0000000680)={0x3, 0x1, 0x5}, &(0x7f00000006c0)=[{}, {}, {}, {}, {}]) timer_settime(0x0, 0x0, &(0x7f0000000940)={{0x77359400}}, &(0x7f0000000980)) rmdir(&(0x7f00000009c0)='./file0\x00') timer_delete(r2) timer_gettime(r2, &(0x7f0000000a00)) [ 71.936888] audit: type=1400 audit(1663515417.315:6): avc: denied { execmem } for pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 15:36:57 executing program 4: prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) 15:36:57 executing program 5: ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x2be) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80}}, './file0\x00'}) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000040)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x7) r1 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x100, 0x5c) perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x0, 0x9, 0x6, 0x1, 0x0, 0x6, 0x8010, 0x6, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x2, 0x5}, 0xd01, 0x3, 0x6, 0x1, 0x1, 0x7ffb, 0x0, 0x0, 0x2}, 0x0, 0xe, r0, 0x1) r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0) fstat(r2, &(0x7f0000000180)) openat$cdrom(0xffffffffffffff9c, &(0x7f0000000200), 0xfd86e5d35c5a8330, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0x7}}, './file0\x00'}) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000007c0)={0x100, 0x0, &(0x7f00000005c0)=[@acquire_done={0x40106309, 0x3}, @register_looper, @transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000340)={@fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x0, &(0x7f0000000280)=""/13, 0xd, 0x2, 0x23}, @ptr={0x70742a85, 0x0, &(0x7f00000002c0)=""/95, 0x5f, 0x0, 0x33}}, &(0x7f00000003c0)={0x0, 0x18, 0x40}}}, @free_buffer, @exit_looper, @transaction_sg={0x40486311, {0x3, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000440)={@flat=@weak_handle={0x77682a85, 0x2080, 0x3}, @fd, @ptr={0x70742a85, 0x1, &(0x7f0000000400)=""/23, 0x17, 0x1, 0x37}}, &(0x7f00000004c0)={0x0, 0x18, 0x30}}, 0x1000}, @transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000500)={@flat=@weak_handle={0x77682a85, 0x0, 0x3}, @flat=@weak_binder={0x77622a85, 0x1001, 0x3}, @flat=@weak_binder={0x77622a85, 0x1, 0x2}}, &(0x7f0000000580)={0x0, 0x18, 0x30}}}, @exit_looper], 0xd3, 0x0, &(0x7f00000006c0)="40c3eef3c6bc7dfaabc44d802a22a07cb96ead3fa10bf75cd3a59795fa91cd33e0e19f87b0df4b9999cf64dff04eef257cd4bfaf7b39a21bd1cf5cf2d557c7a5c870b9b1f7563178d1d5e406d1c4f60235b2d3bbd42d373f6e11d801b4e2abf7d77251779d14d7bf062ac8ec18431fea033e998b6e686f627dfbf18b34c62a7cc4161f913d1fd1bccd5b0ea0e0bdbd433679d49add250c444ad52d536ff062f054712645affdfa920e8736cb576cec942da306e41f488914468b2a8ad92b15ed66d9881355ebee86d22c4b9be97582b105edb3"}) openat$hpet(0xffffffffffffff9c, &(0x7f0000000800), 0x40200, 0x0) fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000840), &(0x7f0000000880), 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f00000008c0)={{0x1, 0x1, 0x18, r1, {0x5}}, './file0\x00'}) ioctl$CDROM_SET_OPTIONS(r4, 0x5320, 0xa) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000900)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) pwritev(r2, &(0x7f0000000cc0)=[{&(0x7f0000000b40)="1f4c1307ad86f0f583583941bf99627489f599a80913768b3dbde5be2fe8b73139f9c49e76643fda4a184c31063af3a94741311765a55bfcf8b612e67f6fd530badea478f39c1632d598b03d13b4a515d240a24ced5bce4f8cbf350677fb834a3ac59cea8a504e3b404f9fba515a63f4f0cc5db3540770acbe883a32b03fbc1ef92fd959c50f7556874b484180c06495b6139ee451f096f916e0f623384da273afade72316124c417c53efd15f2483f7dbeaf812fac507ad33c6d437680e3889ec1063392f04ae54e1d916bc659ebd399d0722e175f5445c4e6e02366a1585a87e2a461db425061ba9c5", 0xea}, {&(0x7f0000000c40)="2550c556c3e2e40f4f411133b5bcb8ea4d6cef153c8b784ce049b001ede3e1a4318b6de16b61ebeab0e2a61c3eca098b0abaa4c4e6e94873bb7950ce9d58b8fff3d6abf8f6", 0x45}], 0x2, 0x80, 0x8e4e) signalfd4(r0, &(0x7f0000000d00)={[0x7]}, 0x8, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000d40)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0/file0\x00'}) getsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000d80), &(0x7f0000000dc0)=0x4) ftruncate(r5, 0x1) 15:36:57 executing program 6: r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x501201, 0x122}, 0x18) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) clone3(&(0x7f0000000280)={0x300042000, &(0x7f00000000c0)=0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0x0, {0x2b}, &(0x7f0000000180)=""/114, 0x72, &(0x7f0000000200)=""/44, &(0x7f0000000240)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x6, {r1}}, 0x58) fsetxattr$security_ima(r2, &(0x7f0000000300), &(0x7f0000000340)=@md5={0x1, "e560efad04977243c2ce57595bc4d9c5"}, 0x11, 0x1) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000380)) r4 = socket$packet(0x11, 0x2, 0x300) fchdir(r4) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) write(r5, &(0x7f00000003c0)="a50fb04a6eadb434c355412c25f4cf154b7d3cd45c14ec110b62336ff6beef60c28799f8302ee146782fd62e021990b3dd2239588f1910d1ee9a5302c6a96bb8b648e113ea0b9afc09c238c8855cf4fa5eac253882f4f5e04d4eac5b063fae4505bf3306bb221937c6caca5b1dde6426faec2e523eb9b74166eceda7f0125c6661061767c83ad78d4e6123ea", 0x8c) r6 = creat(&(0x7f0000000480)='./file0\x00', 0x145) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r1, {0x7}}, './file0\x00'}) ioctl$LOOP_CHANGE_FD(r6, 0x4c06, r7) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000500)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_WAIT_SYNC(r4, 0x40089416, &(0x7f0000000700)=r8) ioctl$BINDER_GET_FROZEN_INFO(r7, 0xc00c620f, &(0x7f0000000740)={r3}) r9 = dup(r5) r10 = openat$null(0xffffffffffffff9c, &(0x7f0000000780), 0x40000, 0x0) getsockopt$SO_BINDTODEVICE(r10, 0x1, 0x19, &(0x7f00000007c0), 0x10) r11 = perf_event_open(&(0x7f0000000800)={0x3, 0x80, 0x1f, 0x1, 0x1, 0x0, 0x0, 0x45, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x7f, 0x1, @perf_config_ext={0x4, 0x6}, 0x181, 0xffff, 0x6, 0x7, 0x1b, 0x35, 0x1, 0x0, 0x4, 0x0, 0x8}, 0xffffffffffffffff, 0xb, r0, 0x8) close_range(r11, r9, 0x2) 15:36:57 executing program 7: ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x124, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x62}, @void, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_ID={0xa}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "6b4e8bc639aece9725d7ba048f65a9c5c8cc179b916a8181"}], @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x28, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x24, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "b6e292869d29db3de14fe8eb564283ff5f194ba4ed78d055"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "e027284e3b8f23b44c64e9e111b9fb16c29ec7049e147166"}, @NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}]]}, 0x124}, 0x1, 0x0, 0x0, 0x4000010}, 0x800) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0) r2 = accept4$unix(r1, &(0x7f0000000280), &(0x7f0000000300)=0x6e, 0x800) mknodat$null(r1, &(0x7f0000000340)='./file0\x00', 0x2000, 0x103) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000380)={{0x1, 0x1, 0x18, r2, {0x4}}, './file0\x00'}) sendmsg$NL80211_CMD_SET_PMKSA(r3, &(0x7f0000000480)={&(0x7f00000003c0), 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x9, 0x2a}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0xc0) r4 = syz_io_uring_complete(0x0) sendmsg$IPVS_CMD_GET_SERVICE(r4, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x20, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_DAEMON={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x8841) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000005c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000000600)={{0x1, 0x1, 0x18, r0, {0x2a, 0x6}}, './file0\x00'}) sendfile(r5, 0xffffffffffffffff, &(0x7f0000000640)=0x4, 0x8) ioctl$TIOCMSET(r4, 0x5418, &(0x7f0000000680)=0x9) mount$cgroup2(0x0, &(0x7f00000006c0)='./file0\x00', &(0x7f0000000700), 0x861060, &(0x7f0000000740)={[{@subsystem='cpuset'}], [{@dont_appraise}, {@fowner_lt}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@obj_user={'obj_user', 0x3d, '/dev/bsg\x00'}}, {@obj_user={'obj_user', 0x3d, '/dev/bsg\x00'}}, {@euid_lt={'euid<', 0xee00}}]}) bind$packet(r3, &(0x7f0000000800)={0x11, 0x10, 0x0, 0x1, 0x2, 0x6, @broadcast}, 0x14) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000840)='/sys/module/printk', 0x305602, 0x1) r7 = syz_open_dev$usbmon(&(0x7f0000000880), 0x4, 0x80042) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r6, 0xc018937a, &(0x7f00000008c0)={{0x1, 0x1, 0x18, r7, {0x9}}, './file0\x00'}) sendmsg$NL80211_CMD_ADD_TX_TS(r6, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000940)={0x58, 0x0, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x4}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xd}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x3}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x58}}, 0x40088a0) sendmsg$TIPC_CMD_SET_NETID(r6, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x24, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {}, {0x8, 0x2, 0x100}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0) [ 73.249161] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 73.250997] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.252475] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.254222] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 73.255383] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.256497] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.258344] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 73.259572] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.260848] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.288057] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.289364] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.290673] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 73.292178] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.294167] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 73.296049] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 73.298093] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 73.300332] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.301780] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.304659] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.307031] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 73.308088] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 73.309559] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 73.311987] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 73.314735] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 73.315993] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.317280] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 73.317446] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.321002] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 73.322926] Bluetooth: hci1: HCI_REQ-0x0c1a [ 73.323254] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 73.336203] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.337469] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 73.338909] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 73.339074] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 73.347954] Bluetooth: hci0: HCI_REQ-0x0c1a [ 73.354410] Bluetooth: hci3: HCI_REQ-0x0c1a [ 73.355297] Bluetooth: hci2: HCI_REQ-0x0c1a [ 73.384161] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 73.385536] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 73.391333] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 73.392599] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 73.397526] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 73.399000] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 73.400830] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 73.403576] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 73.408329] Bluetooth: hci5: HCI_REQ-0x0c1a [ 73.409254] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 73.411714] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 73.424564] Bluetooth: hci6: HCI_REQ-0x0c1a [ 73.426968] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 73.427954] Bluetooth: hci7: HCI_REQ-0x0c1a [ 73.428838] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 73.447119] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 73.456643] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 73.459153] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 73.468161] Bluetooth: hci4: HCI_REQ-0x0c1a [ 75.377778] Bluetooth: hci3: command 0x0409 tx timeout [ 75.377780] Bluetooth: hci2: command 0x0409 tx timeout [ 75.379584] Bluetooth: hci0: command 0x0409 tx timeout [ 75.380481] Bluetooth: hci1: command 0x0409 tx timeout [ 75.441058] Bluetooth: hci7: command 0x0409 tx timeout [ 75.441407] Bluetooth: hci5: command 0x0409 tx timeout [ 75.441809] Bluetooth: hci6: command 0x0409 tx timeout [ 75.505343] Bluetooth: hci4: command 0x0409 tx timeout [ 77.424966] Bluetooth: hci1: command 0x041b tx timeout [ 77.425477] Bluetooth: hci0: command 0x041b tx timeout [ 77.426274] Bluetooth: hci2: command 0x041b tx timeout [ 77.426722] Bluetooth: hci3: command 0x041b tx timeout [ 77.488938] Bluetooth: hci6: command 0x041b tx timeout [ 77.489423] Bluetooth: hci5: command 0x041b tx timeout [ 77.490515] Bluetooth: hci7: command 0x041b tx timeout [ 77.552904] Bluetooth: hci4: command 0x041b tx timeout [ 79.484454] Bluetooth: hci3: command 0x040f tx timeout [ 79.485000] Bluetooth: hci2: command 0x040f tx timeout [ 79.486750] Bluetooth: hci0: command 0x040f tx timeout [ 79.488381] Bluetooth: hci1: command 0x040f tx timeout [ 79.549816] Bluetooth: hci7: command 0x040f tx timeout [ 79.550711] Bluetooth: hci5: command 0x040f tx timeout [ 79.555890] Bluetooth: hci6: command 0x040f tx timeout [ 79.600935] Bluetooth: hci4: command 0x040f tx timeout [ 81.521118] Bluetooth: hci1: command 0x0419 tx timeout [ 81.521664] Bluetooth: hci0: command 0x0419 tx timeout [ 81.523193] Bluetooth: hci2: command 0x0419 tx timeout [ 81.523615] Bluetooth: hci3: command 0x0419 tx timeout [ 81.584954] Bluetooth: hci6: command 0x0419 tx timeout [ 81.585486] Bluetooth: hci5: command 0x0419 tx timeout [ 81.585934] Bluetooth: hci7: command 0x0419 tx timeout [ 81.648928] Bluetooth: hci4: command 0x0419 tx timeout [ 123.977426] capability: warning: `syz-executor.3' uses 32-bit capabilities (legacy support in use) 15:37:49 executing program 3: syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x0, 0x1, &(0x7f0000001180)=[{&(0x7f0000000100)="6b99a050950c649be5ae", 0xa}], 0x0, 0x0) eventfd(0x0) r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='cpu.max\x00', 0x2, 0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x2500, 0x0) fcntl$dupfd(r0, 0x406, r1) syz_io_uring_setup(0x6da2, &(0x7f0000001480)={0x0, 0x0, 0x1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001500), &(0x7f0000001540)) 15:37:49 executing program 2: syz_mount_image$iso9660(0x0, &(0x7f0000000440)='./file0\x00', 0x3ff, 0x3, &(0x7f00000006c0)=[{&(0x7f0000000480)="d7", 0x1, 0x7}, {0x0, 0x0, 0x6}, {&(0x7f0000000600)="ca", 0x1}], 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="539d19b583d0c36bddcaef3e0a28b79d02e264aa2aace7e893776015220f08b8a49b5fdf1c32e446a3e4e52bad88574b54e4ac67e811a24c82f6e16aeda27db0e5fc86103c6e95b6818234c46f56f13bf9f516094f04e402fac809e72a7237ad870382bda4a7056f7496e95f94e7d633b32a39ed4dd5742e15386b4696f2"]) [ 124.314998] loop2: detected capacity change from 0 to 1 [ 124.341551] loop2: detected capacity change from 0 to 1 15:37:49 executing program 4: perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r1 = signalfd(0xffffffffffffffff, &(0x7f00000007c0), 0x8) syz_io_uring_setup(0x0, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x2, 0x0, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x2, 0x7f, 0x59, 0xff, 0x0, 0x800, 0x1001, 0x6, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x23, 0x1, @perf_config_ext={0x7, 0x401}, 0x10804, 0xfff, 0xffffffff, 0x1, 0x4, 0x564, 0x6, 0x0, 0xa7}, 0xffffffffffffffff, 0x8, r1, 0x3) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7fffffff) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000017ffde00", @ANYBLOB='B\x00\x00\x00\x00\x00']) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xf523}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x20, 0x0, 0x2) perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x1, 0x1f, 0xec, 0x1, 0x0, 0x4, 0xa0053, 0x11, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_config_ext={0x401, 0x1}, 0x2000, 0x0, 0xffffff84, 0x0, 0xed2, 0x101, 0x1, 0x0, 0x0, 0x0, 0x6287}, 0x0, 0x0, 0xffffffffffffffff, 0x3) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$EXT4_IOC_CHECKPOINT(r2, 0x4004662b, &(0x7f0000000340)) ioctl$BTRFS_IOC_SET_FEATURES(0xffffffffffffffff, 0x40309439, &(0x7f0000000240)={0x1, 0x0, 0xa}) r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) fallocate(r3, 0xb, 0x0, 0x101) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) 15:37:49 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000470008000f80100200040000300000000000000800029f95845f153595a4b414c4c4552202046415431362020200e1fbe5b7cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a00", 0xc0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aaf8fffffff0ffffffff078000ffffff00"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="f8fffffff0ffffffff078000ffffff00"/32, 0x20, 0x400}, {&(0x7f0000010300)="f8fffffff0ffffffff078000ffffff00"/32, 0x20, 0x600}, {&(0x7f0000010400)="f8fffffff0ffffffff078000ffffff00"/32, 0x20, 0x800}, {&(0x7f0000010500)="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", 0x120, 0xa00}, {&(0x7f0000010700)="2e20202020202020202020100061e870325132510000e87032510300000000002e2e202020202020202020100061e870325132510000e870325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200061e870325132510000e870325104001a040000", 0x80, 0x2800}, {&(0x7f0000010800)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x3800}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0x4800}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x8800}], 0x0, &(0x7f0000010f00)=ANY=[@ANYBLOB='\x00']) [ 124.452258] audit: type=1400 audit(1663515469.830:7): avc: denied { open } for pid=3902 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 124.455272] audit: type=1400 audit(1663515469.831:8): avc: denied { kernel } for pid=3902 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 124.467157] loop2: detected capacity change from 0 to 136 15:37:49 executing program 3: sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x800) sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x44, 0x0, 0x328, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x2}, @ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x800}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x771a}, @ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x8001}, 0xc054) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x9, &(0x7f0000000140)=0x0) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000380), 0x800, 0x0) io_submit(r0, 0x1, &(0x7f00000005c0)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f00000001c0)=')', 0x1}]) r2 = eventfd2(0x7, 0x0) sendfile(r1, r2, &(0x7f0000000340)=0x5, 0x400) syz_open_procfs(0x0, &(0x7f0000000100)='net/dev\x00') write(0xffffffffffffffff, &(0x7f0000000080)="01", 0x41030) fsetxattr$security_selinux(r2, &(0x7f0000000180), &(0x7f0000000240)='system_u:object_r:zero_device_t:s0\x00', 0x23, 0x1) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) socket$packet(0x11, 0x3, 0x300) [ 124.493863] ------------[ cut here ]------------ [ 124.493897] [ 124.493901] ====================================================== [ 124.493908] WARNING: possible circular locking dependency detected [ 124.493914] 6.0.0-rc5-next-20220916 #1 Not tainted [ 124.493926] ------------------------------------------------------ [ 124.493931] syz-executor.4/3905 is trying to acquire lock: [ 124.493943] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 124.494005] [ 124.494005] but task is already holding lock: [ 124.494010] ffff88800ddbdc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 124.494059] [ 124.494059] which lock already depends on the new lock. [ 124.494059] [ 124.494064] [ 124.494064] the existing dependency chain (in reverse order) is: [ 124.494070] [ 124.494070] -> #3 (&ctx->lock){....}-{2:2}: [ 124.494096] _raw_spin_lock+0x2a/0x40 [ 124.494130] __perf_event_task_sched_out+0x53b/0x18d0 [ 124.494153] __schedule+0xedd/0x2470 [ 124.494173] schedule+0xda/0x1b0 [ 124.494191] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.494228] syscall_exit_to_user_mode+0x19/0x40 [ 124.494262] do_syscall_64+0x48/0x90 [ 124.494288] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.494321] [ 124.494321] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 124.494346] _raw_spin_lock_nested+0x30/0x40 [ 124.494375] raw_spin_rq_lock_nested+0x1e/0x30 [ 124.494398] task_fork_fair+0x63/0x4d0 [ 124.494429] sched_cgroup_fork+0x3d0/0x540 [ 124.494455] copy_process+0x4183/0x6e20 [ 124.494474] kernel_clone+0xe7/0x890 [ 124.494491] user_mode_thread+0xad/0xf0 [ 124.494509] rest_init+0x24/0x250 [ 124.494541] arch_call_rest_init+0xf/0x14 [ 124.494562] start_kernel+0x4c1/0x4e6 [ 124.494580] secondary_startup_64_no_verify+0xe0/0xeb [ 124.494605] [ 124.494605] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 124.494630] _raw_spin_lock_irqsave+0x39/0x60 [ 124.494659] try_to_wake_up+0xab/0x1920 [ 124.494684] up+0x75/0xb0 [ 124.494705] __up_console_sem+0x6e/0x80 [ 124.494734] console_unlock+0x46a/0x590 [ 124.494764] do_con_write+0xc05/0x1d50 [ 124.494784] con_write+0x21/0x40 [ 124.494802] n_tty_write+0x4d4/0xfe0 [ 124.494826] file_tty_write.constprop.0+0x49c/0x8f0 [ 124.494848] vfs_write+0x9c3/0xd90 [ 124.494882] ksys_write+0x127/0x250 [ 124.494914] do_syscall_64+0x3b/0x90 [ 124.494939] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.494972] [ 124.494972] -> #0 ((console_sem).lock){....}-{2:2}: [ 124.494997] __lock_acquire+0x2a02/0x5e70 [ 124.495028] lock_acquire+0x1a2/0x530 [ 124.495058] _raw_spin_lock_irqsave+0x39/0x60 [ 124.495087] down_trylock+0xe/0x70 [ 124.495109] __down_trylock_console_sem+0x3b/0xd0 [ 124.495140] vprintk_emit+0x16b/0x560 [ 124.495171] vprintk+0x84/0xa0 [ 124.495201] _printk+0xba/0xf1 [ 124.495235] report_bug.cold+0x72/0xab [ 124.495258] handle_bug+0x3c/0x70 [ 124.495283] exc_invalid_op+0x14/0x50 [ 124.495309] asm_exc_invalid_op+0x16/0x20 [ 124.495340] group_sched_out.part.0+0x2c7/0x460 [ 124.495360] ctx_sched_out+0x8f1/0xc10 [ 124.495377] __perf_event_task_sched_out+0x6d0/0x18d0 [ 124.495400] __schedule+0xedd/0x2470 [ 124.495418] schedule+0xda/0x1b0 [ 124.495437] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.495472] syscall_exit_to_user_mode+0x19/0x40 [ 124.495505] do_syscall_64+0x48/0x90 [ 124.495530] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.495563] [ 124.495563] other info that might help us debug this: [ 124.495563] [ 124.495568] Chain exists of: [ 124.495568] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 124.495568] [ 124.495595] Possible unsafe locking scenario: [ 124.495595] [ 124.495599] CPU0 CPU1 [ 124.495603] ---- ---- [ 124.495608] lock(&ctx->lock); [ 124.495618] lock(&rq->__lock); [ 124.495629] lock(&ctx->lock); [ 124.495641] lock((console_sem).lock); [ 124.495651] [ 124.495651] *** DEADLOCK *** [ 124.495651] [ 124.495655] 2 locks held by syz-executor.4/3905: [ 124.495668] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 124.495715] #1: ffff88800ddbdc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 124.495766] [ 124.495766] stack backtrace: [ 124.495771] CPU: 1 PID: 3905 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220916 #1 [ 124.495794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 124.495808] Call Trace: [ 124.495814] [ 124.495820] dump_stack_lvl+0x8b/0xb3 [ 124.495848] check_noncircular+0x263/0x2e0 [ 124.495880] ? format_decode+0x26c/0xb50 [ 124.495907] ? print_circular_bug+0x450/0x450 [ 124.495940] ? enable_ptr_key_workfn+0x20/0x20 [ 124.495968] ? format_decode+0x26c/0xb50 [ 124.495998] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 124.496031] __lock_acquire+0x2a02/0x5e70 [ 124.496072] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 124.496115] lock_acquire+0x1a2/0x530 [ 124.496146] ? down_trylock+0xe/0x70 [ 124.496173] ? rcu_read_unlock+0x40/0x40 [ 124.496213] ? vprintk+0x84/0xa0 [ 124.496247] _raw_spin_lock_irqsave+0x39/0x60 [ 124.496277] ? down_trylock+0xe/0x70 [ 124.496302] down_trylock+0xe/0x70 [ 124.496327] ? vprintk+0x84/0xa0 [ 124.496359] __down_trylock_console_sem+0x3b/0xd0 [ 124.496392] vprintk_emit+0x16b/0x560 [ 124.496428] vprintk+0x84/0xa0 [ 124.496461] _printk+0xba/0xf1 [ 124.496496] ? record_print_text.cold+0x16/0x16 [ 124.496538] ? report_bug.cold+0x66/0xab [ 124.496566] ? group_sched_out.part.0+0x2c7/0x460 [ 124.496587] report_bug.cold+0x72/0xab [ 124.496616] handle_bug+0x3c/0x70 [ 124.496643] exc_invalid_op+0x14/0x50 [ 124.496671] asm_exc_invalid_op+0x16/0x20 [ 124.496731] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 124.496755] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 124.496776] RSP: 0018:ffff888041257c48 EFLAGS: 00010006 [ 124.496792] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 124.496806] RDX: ffff8880208b8000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 124.496820] RBP: ffff888041258000 R08: 0000000000000005 R09: 0000000000000001 [ 124.496834] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800ddbdc00 [ 124.496848] R13: ffff88806cf3d100 R14: ffffffff8547c7c0 R15: 0000000000000002 [ 124.496869] ? group_sched_out.part.0+0x2c7/0x460 [ 124.496893] ? group_sched_out.part.0+0x2c7/0x460 [ 124.496916] ctx_sched_out+0x8f1/0xc10 [ 124.496940] __perf_event_task_sched_out+0x6d0/0x18d0 [ 124.496968] ? lock_is_held_type+0xd7/0x130 [ 124.497004] ? __perf_cgroup_move+0x160/0x160 [ 124.497026] ? set_next_entity+0x304/0x550 [ 124.497059] ? update_curr+0x267/0x740 [ 124.497094] ? lock_is_held_type+0xd7/0x130 [ 124.497130] __schedule+0xedd/0x2470 [ 124.497155] ? io_schedule_timeout+0x150/0x150 [ 124.497179] ? rcu_read_lock_sched_held+0x3e/0x80 [ 124.497217] schedule+0xda/0x1b0 [ 124.497239] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.497277] syscall_exit_to_user_mode+0x19/0x40 [ 124.497312] do_syscall_64+0x48/0x90 [ 124.497340] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.497374] RIP: 0033:0x7fd36ece3b19 [ 124.497389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.497409] RSP: 002b:00007fd36c259218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.497429] RAX: 0000000000000001 RBX: 00007fd36edf6f68 RCX: 00007fd36ece3b19 [ 124.497443] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd36edf6f6c [ 124.497457] RBP: 00007fd36edf6f60 R08: 000000000000000e R09: 0000000000000000 [ 124.497470] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fd36edf6f6c [ 124.497483] R13: 00007fff8f00b3af R14: 00007fd36c259300 R15: 0000000000022000 [ 124.497507] [ 124.597130] WARNING: CPU: 1 PID: 3905 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 124.598402] Modules linked in: [ 124.598848] CPU: 1 PID: 3905 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220916 #1 [ 124.599959] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 124.601516] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 124.602281] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 124.604806] RSP: 0018:ffff888041257c48 EFLAGS: 00010006 [ 124.605545] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 124.606531] RDX: ffff8880208b8000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 124.607521] RBP: ffff888041258000 R08: 0000000000000005 R09: 0000000000000001 [ 124.608512] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800ddbdc00 [ 124.609507] R13: ffff88806cf3d100 R14: ffffffff8547c7c0 R15: 0000000000000002 [ 124.610510] FS: 00007fd36c259700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 124.611630] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.612439] CR2: 00007fa8fb6b44c8 CR3: 0000000018136000 CR4: 0000000000350ee0 [ 124.613443] Call Trace: [ 124.613807] [ 124.614134] ctx_sched_out+0x8f1/0xc10 [ 124.614682] __perf_event_task_sched_out+0x6d0/0x18d0 [ 124.615397] ? lock_is_held_type+0xd7/0x130 [ 124.616021] ? __perf_cgroup_move+0x160/0x160 [ 124.616652] ? set_next_entity+0x304/0x550 [ 124.617282] ? update_curr+0x267/0x740 [ 124.617832] ? lock_is_held_type+0xd7/0x130 [ 124.618441] __schedule+0xedd/0x2470 [ 124.618973] ? io_schedule_timeout+0x150/0x150 [ 124.619620] ? rcu_read_lock_sched_held+0x3e/0x80 [ 124.620320] schedule+0xda/0x1b0 [ 124.620807] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.621512] syscall_exit_to_user_mode+0x19/0x40 [ 124.622184] do_syscall_64+0x48/0x90 [ 124.622714] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.623448] RIP: 0033:0x7fd36ece3b19 [ 124.623973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.626484] RSP: 002b:00007fd36c259218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.627535] RAX: 0000000000000001 RBX: 00007fd36edf6f68 RCX: 00007fd36ece3b19 [ 124.628536] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd36edf6f6c [ 124.629538] RBP: 00007fd36edf6f60 R08: 000000000000000e R09: 0000000000000000 [ 124.630533] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fd36edf6f6c [ 124.631508] R13: 00007fff8f00b3af R14: 00007fd36c259300 R15: 0000000000022000 [ 124.632512] [ 124.632860] irq event stamp: 682 [ 124.633329] hardirqs last enabled at (681): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 124.634625] hardirqs last disabled at (682): [] __schedule+0x1225/0x2470 [ 124.635759] softirqs last enabled at (634): [] __irq_exit_rcu+0x11b/0x180 [ 124.636960] softirqs last disabled at (625): [] __irq_exit_rcu+0x11b/0x180 [ 124.638136] ---[ end trace 0000000000000000 ]--- 15:37:50 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0xf, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000e2f4655fe2f4655f0100ffff53ef010001000000e1f4655f000000000000000001000000000000000b0000000004000008000000d2c20000120300000000000000000000000000000000000073797a6b", 0x7c, 0x400}, {&(0x7f0000010100)="000000000000000000000000fc8e0b4946704d25a0f18393550c433b010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="0000000000000000000000000000000000000000000000000000000020002000010000000000000000000000000000000000000004", 0x35, 0x540}, {&(0x7f0000010300)="0300000004", 0x5, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000e1f4655fe2f4655fe2f4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012700)}, {&(0x7f0000012800)="8081000000180000e1f4655fe1f4655fe1f4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {0x0, 0x0, 0x4880}, {&(0x7f0000012a00)="8081000000180000e1f4655fe1f4655fe1f4655f0000000000000100", 0x1c, 0x4c00}, {0x0}, {0x0}, {&(0x7f0000013400)}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}, {0x0}], 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="c114bb34076515306e0870edf7f3402bf8b95136ceffc62f15e5570d71fd0379cd3d1b4648ae1f5b275a5e944ee074e76e6a3b5d051bb138440aeb614bfec50ba164728aa84406c8fb2c9c93f2fa0c9d934d63cb76"]) r0 = syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x946, 0x0, &(0x7f00000001c0), 0x10, &(0x7f0000000380)={[{@nodots}, {@nodots}, {@nodots}, {@nodots}, {@fat=@umask={'umask', 0x3d, 0x9f2a}}, {@fat=@check_normal}], [{@smackfshat={'smackfshat', 0x3d, 'ext4\x00'}}, {@dont_measure}, {@obj_type={'obj_type', 0x3d, 'ext4\x00'}}, {@uid_gt={'uid>', 0xee00}}]}) r1 = getgid() ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=0xee00, @ANYRES32=r1, @ANYBLOB='n/file0\x00']) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r2, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000440)={{{@in6, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@private}, 0x0, @in6=@private0}}, &(0x7f0000000540)=0xe8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x4200, &(0x7f0000000580)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, r1}}, {@cache_loose}], [{@uid_eq={'uid', 0x3d, 0xee01}}, {@audit}, {@obj_user={'obj_user', 0x3d, ':'}}, {@obj_type={'obj_type', 0x3d, 'ext4\x00'}}, {@fowner_lt={'fowner<', r2}}, {@euid_gt={'euid>', r3}}, {@dont_measure}]}}) 15:37:50 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000001c0)={0x14, 0x3a, 0x101, 0x0, 0x0, "", [@nested={0xa}]}, 0x14}], 0x1}, 0x0) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040), 0x10) read(0xffffffffffffffff, &(0x7f0000000000)=""/35, 0x23) [ 124.800198] loop2: detected capacity change from 0 to 4096 [ 124.801494] ext4: Unknown parameter 'Á»4e0npí÷ó@+ø¹Q6ÎÿÆ/åWqýyÍ' [ 124.807219] loop2: detected capacity change from 0 to 4 [ 124.812034] FAT-fs (loop2): Unrecognized mount option "smackfshat=ext4" or missing value 15:37:50 executing program 2: ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0xff) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000004c0)=ANY=[@ANYBLOB="41c4c37ebfb5010000000100000018100000", @ANYRES32=0xffffffffffffffff, @ANYBLOB="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"]) ioctl$TIOCL_SETVESABLANK(r0, 0x541c, &(0x7f00000000c0)) accept4(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x44031, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x4d031, 0xffffffffffffffff, 0x0) VM DIAGNOSIS: 15:37:50 Registers: info registers vcpu 0 RAX=0000000080000000 RBX=0000000000000000 RCX=ffffffff8139022a RDX=ffff88800fc85040 RSI=0000000000000000 RDI=0000000000000007 RBP=1ffff110033a9fd5 RSP=ffff888019d4fe88 R8 =0000000000000007 R9 =000000003b9ac9ff R10=00000000000f4240 R11=0000000000000001 R12=ffffffff84895780 R13=ffffffff848957b0 R14=ffff888019d4fec8 R15=00000000000f4240 RIP=ffffffff81461747 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00005555561f5400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7a9213b8e0 CR3=0000000038658000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b3251 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff888041257698 R8 =0000000000000001 R9 =000000000000000a R10=000000000000002e R11=0000000000000001 R12=000000000000002e R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b3240 RIP=ffffffff822b32a9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fd36c259700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa8fb6b44c8 CR3=0000000018136000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fd36edca7c0 00007fd36edca7c8 YMM02=0000000000000000 0000000000000000 00007fd36edca7e0 00007fd36edca7c0 YMM03=0000000000000000 0000000000000000 00007fd36edca7c8 00007fd36edca7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000